Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa
File: brfd-XD_WRsfJj26bdliHMCmfcA.roa (raw, json)
Hash identifier: EUFSJx51uKzd/DTA4ltAWunc7W2chNZup2iSxQ4BtJk=
Subject key identifier: 6E:B7:DD:F9:70:FF:59:1B:1F:26:3D:BA:6D:D9:62:1C:C0:A6:7D:C0
Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial: 09
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa
Signing time: Mon 01 Apr 2024 23:57:05 +0000
ROA not before: Mon 01 Apr 2024 23:57:05 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 18071
IP address blocks: 157.8.1.224/27 maxlen: 27
Validation: Failed, certificate revoked on Mon 08 Jul 2024 04:21:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Validity
Not Before: Apr 1 23:57:05 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=6EB7DDF970FF591B1F263DBA6DD9621CC0A67DC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:b1:e9:3a:ba:f7:83:4b:7c:42:f8:8f:ba:
af:79:1c:06:f8:68:a0:01:70:d2:dc:c1:a0:fd:1a:
a6:c3:b0:09:6a:75:41:d8:27:0f:f1:45:e9:b9:e6:
f2:5d:e5:ff:5c:22:31:a4:1a:cc:65:3a:4e:83:54:
81:d9:9f:bd:21:15:65:8d:83:a4:61:bc:e2:38:1e:
db:82:4a:1c:fd:65:bd:63:44:b7:02:f2:e6:6b:ec:
e2:02:7d:6b:3b:b9:78:73:4e:45:2e:4f:94:1a:1c:
5b:bd:30:c3:3b:80:64:cc:72:0e:7e:dd:67:a3:28:
4d:26:d4:4c:91:21:60:c3:17:8d:f4:28:df:84:3d:
7e:bf:d9:37:70:6d:3f:a0:67:6a:76:74:77:fb:b7:
fc:4c:00:92:7c:76:b8:f5:6e:f7:7e:74:4e:8e:5b:
2e:0b:d5:7c:05:fe:5d:b4:13:96:e5:fe:7a:53:bb:
fd:5b:9f:58:a3:92:20:17:c6:e1:17:56:33:bb:59:
77:1d:01:ef:63:e0:27:98:c6:7b:f0:39:1a:be:1e:
3d:df:6c:eb:9c:71:cd:b5:23:37:6f:02:87:51:79:
78:31:c2:92:06:5b:a4:4c:d9:18:3a:e3:9a:aa:a8:
a9:c6:eb:b5:32:9a:0c:43:4e:9b:0c:e4:d7:17:fb:
f0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B7:DD:F9:70:FF:59:1B:1F:26:3D:BA:6D:D9:62:1C:C0:A6:7D:C0
X509v3 Authority Key Identifier:
keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.8.1.224/27
Signature Algorithm: sha256WithRSAEncryption
2f:0d:eb:b9:10:3d:9d:6e:a3:25:39:f0:09:61:c8:42:0b:93:
5e:6f:ba:38:e0:1a:65:fe:8d:96:24:90:24:69:d9:3d:10:72:
d5:2b:8c:6f:9f:58:35:b5:9b:0d:3d:08:11:62:22:32:15:8d:
7e:22:48:64:7c:87:cb:f2:44:03:88:f4:13:5c:02:20:dd:ab:
a3:29:20:03:f4:b4:12:c5:40:35:4d:2d:cd:6c:6a:75:98:ed:
fa:0a:54:e8:24:85:8c:05:02:00:d7:72:03:e3:2a:b3:3c:0b:
62:8f:40:1d:e8:a9:8f:5f:86:c3:ef:48:02:40:f2:fd:91:be:
2b:5e:da:6f:cf:91:26:19:a5:5d:8f:5a:45:b5:6b:68:66:5b:
eb:42:ba:b5:e0:99:d3:c1:38:16:f9:26:25:fa:b7:05:a8:d7:
df:8b:f3:dc:fa:a8:30:e0:ba:b2:fe:7d:47:82:f3:d4:a0:f6:
47:90:64:d8:7d:1e:36:9f:10:9e:3e:63:c0:ce:fb:75:4b:dc:
c9:63:80:f9:8a:f3:fc:aa:4e:cc:e6:ef:ea:82:ab:65:e6:13:
a6:53:cc:32:9d:52:2b:64:26:13:eb:e0:ac:62:47:6d:68:9c:
9a:49:f7:62:40:44:3c:0f:a6:32:4f:e7:1c:bb:36:f9:b4:ae:
04:bc:72:ca
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Jul 8 05:05:53 2024 by rpki-client on console-fra.rpki-client.org